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(57) Abstract: The present invention 
is for automatic reconfiguration of 
industrial networked devices. More 
particularly, the system described herein 
facilitates use of TCP/IP networks, 
such as Ethernet (20), as an alternative 
for industrial fieldbus or device buses 
by removing the need to perform 
significant reconfiguration of devices 
such as I/O modules (50), sensors, or 
transducers under field replacement 
situations. The present invention uses 
a monitor agent (10) to track the IP 
and MAC addresses of networked 
devices as well as port information. If 
a device fails, maintenance personnel 
make an in-field replacement of the 
failed device and the monitor agent (10) 
automatically reassigns the IP address to 
the replacement device. 
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INDUSTRIAL AUTOMATION NETWORKING SYSTEM 

TECHNICAL FIELD OF THE INVENTION 

5 The present invention relates generally to networked devices. More specifically, the 

present invention relates to a system of assigning addresses to network devices, and more 
specifically, to a system encompassing automatic assignment of a network address after in- 
field replacement. 

10 BACKGROUND OF THE INVENTION 

Industrial devices such as temperature or pressure sensors are accessed by a 
client using an Internet Protocol (IP) Address or DNS symbolic name 
(machine, company, com). If a unit needs to be replaced, the replacement must appear to 

is have the same IP Address as the predecessor to allow operations to proceed 
automatically. Typical maintenance personnel are not qualified to manipulate IP 
Addresses and must defer to Information Systems (IS) department or other network 
specialists. This causes a significant delay in connecting devices, which results in factory 
down-time. Alternatively, expensive specialists must be maintained around the clock to 

2 o handle such problems. 

The prior art encompasses several networking techniques. The Bootstrap Protocol 
(BOOTP) is an established method for assigning IP address and other key networking 
parameters to a device where the only information known about the device is its Ethernet 
2 5 Media Access Control (MAC) address. The protocol was invented by Sun Microsystems in 
1985 to support diskless UNIX workstations. It is available as an option on most software 
products intended for use in embedded (no operator terminal) applications. 

The Dynamic Host Configuration Protocol (DCHP) is a standard for networking 
30 communications. DCHP is a compatible extension to BOOTP and queries in DCHP form 

l 
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can be generated by devices using modern operating systems such as Windows CE or 
LINUX. 

DCHP is primarily used for laptop computers or office systems in large 
5 companies where the addresses are 'leased' for a period of time rather than being 
assigned indefinitely. Likewise, the Simple Network Management Protocol (SNMP) is 
intended to allow Network Administrators to find and adjust key networking parameters on 
devices already installed on anetwork, particularly the routers, bridges, and hubs which form 
the imrastmcture of the network.. The JetA<lmin Network Printer tool is a Hewlett-Packard 
10 system for reporting printer errors and administrating usage. 

Reverse ARP (RARP) is an older protocol than BOOTP and intended for devices 
that did not require any configuration other than the IP address assignment. RARP is not as 
widely used as BOOTP because the tools to implement RARP are not as commonplace, 
is RARP is implemented on some embedded system protocol stacks, wherein the supervisory 
server may respond with a RARP response if interrogated using a RARP request for a given 
MAC address. 

The MAC address is a key identification parameter of all devices on a network such 
20 as Ethernet. It is a 48-bit number that combines information about the vendor and a unique 
unit sequence number, and is permanently allocated by the manufacturer of the network 
interface itself It is not normally related in any way to the serial number or similar 
representation that a device might require for other reasons. The MAC address is 
conventionally expressed as a hexadecimal representation that is hard for non-specialists to 
25 handle. The Ethernet hardware uses the MAC address to determine which network 
messages are intended for specific delivery (unicast) to this station 

PING is another Internet protocol used for periodic interrogation of an IP device as 
an alternative to repeated use of the ARP request. There is little practical benefit for using 
3 o PING, as the ARP messages are foster and less intrusive. All modem IP devices will respond 
to an ARP request because it is the only way to determine the MAC address. 



2 



WO 02/05107 



PCT7USOO/40346 



An 'Ethernet Switch" or 'Layer 2 switch' is a device that transmits message packets 
unchanged from one of its ports to another, using rules that are dependent only upon the 
destination MAC address of the message. Such devices are becoming the preferred 
interconnection devices for large Ethernet networks, since they do not require significant 
configuration. This is as opposed to 'routers', otherwise known as 'Layer 3 switches'. 

A 'Managed Ethernet Switch' is an Ethernet switch which includes a management 
entity conforming to the reporting requirements of RFC 1493, and which therefore 
specifically may be interrogated to determine which port of the device was used recently to 
receive a message from a particular MAC address. 

The protocol exchanges between the system components, namely the device, the 
managed switch, and the target IP unit are structurally defined in various standards 
documents. Software designers refer to these specifications when trying to implement 
software that encodes or decodes various messages. The Internet Request for Comment 
(RFC) documents are the standard form of documents for all communications using the 
Internet or TCP/IP. 



The following table defines the primaiy applicable Internet protocol messages: (Table 

1) 



ARP Request 
See RFC 826 


ARP Response 
See RFC 826 


SNMP Fbidport 
Request 

See RFC 1493/1157 


SNMP Findport 
Response 


BOOTP Request 
See RFC 951 


BOOTP Response 


Message type = 
address resolution 
request 


Message type = 
address resolution 
response requested IP 
Address 


Message type - 
SNMP get object 
request 


Message type = 
SNMP get object 
response 


Message type = 
BOOT protocol 
request 


Message type = 
BOOT protocol 
response 


Desired IP 
address = 32 bit 
IP address (eg: 
12.3.4) 


Resolved MAC 
address = 48 bit 
MAC address (eg: 
0123:45:67:89:ab) 


Object ID - 
.13.6.12.17.43.12. 
(MAC as 6 decimal 
number 0-255) 


Object ID = 
.13.6.12.17.43.1. 
2. (MAC as 6 
decimal number 0- 
255) 


Requesting MAC 53 
48 bit MAC address 
(eg: 

0123:45:67:89:ab) 


Requesting MAC = 
48 bit MAC address 

0123:45:67:89:ab) 








Object value ■ 




AssigiedIP>=32bit 
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port number, or 0 
if not found 




IP Address 



Alternatively, other Internet protocols messages are: (Table 2) 



PING Request 
See RFC 792 


PING Response 


DCHP Request 
See RFC 2131/2132 


DCHP 
Response 


RARP Request 
See RFC 903 


RARP Response 


Me<ssaee tvne ~ 

ICMPECHO 

request 


Message type = 

ICMPECHO 

response 


Message contents = 
sameasBOOTP 


Message 
contents = same 
asBOOTP 


Message type 
reverse address 
resolution request 


Message type « 
reverse address 
resolution response 


Message data 
unimportant 








MAC =48 bit 
MAC address (eg: 
0123:45:67:89ab) 


MAC -48 bit 
MAC address (eg: 
0123:45:67:89*.ab) 












Assigned IP = 32 
bit IP Address (eg: 
1.2.3.4) 



There have been numerous attempts to provide an automatic addressing system 
5 Many of the prior art systems employ non-IP means to set the address in advance, such as 
manually alterable switches, special connectors, front panel interface for manually entering 
addresses, and separate serial port interface for issuing an address. Although these existing 
means are satisfactory in some instances, they do not adequately address the industrial or 
factory market for devices such as sensors and I/O devices. And, it is not feasible or cost- 
10 effective to employ the existing addressing techniques into certain devices or certain 
environments. 

Historically, almost all devices which have been attached to a TCP/IP network 
have been computer systems of some type, either of a 'conventional' (with keyboard and 
15 display) or 'embedded' (such as a network printer) type. 

In order to make a TCP/IP device functional on a network, it is necessary to 
assign certain address parameters, most importantly the 32-bit IP address. In many 
cases additional parameters such as netmask, gateway, and Domain Name Server 
2 o settings also need to be established. These settings are important for proper 

performance, otherwise the network becomes unstable and exhibits erratic behavior 
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affecting the performance not just of the device being configured, but also other devices 
on the network. 

The typical prior art sequence for manual assignment of the IP address and other 
5 networking parameters begins with the direct assignment of the IP Address using a local 
data entry port prior to attachment on the network. This is normally accomplished 
through the operator panel or user interface. The operator assigns the IP address by 
keystroke and confirms the settings before allowing communication on the network. 

10 One prior art method of automatic assignment of IP addresses uses BOOTP or 

DHCP. The BOOTP or DCHP techniques require that a database be maintained 
separately that associates the MAC address 1 of the device to^be attached with the 
required IP address and other parameters. This database is created and maintained by the 
network specialist and requires considerable skills that would not be held by the typical 

15 field replacement technician. In addition, DHCP cannot be used conventionally, to 
assign an 'unpredictable* address within a 'pool* of available addresses, because the 
primary network protocols between industrial devices, such as Modbus/TCP, use 
explicit knowledge of the IP addresses of the designated targets. For example, when 
DHCP is used on systems using Windows NT Server, the option known as TP address 

2 o reservation 1 is typically used. This actually makes DHCP equivalent to BOOTP in this 
embodiment. 

This prior art invention vises a central BOOTP or DHCP server to maintain a list of 
MAC addresses and EP addresses in a central location and allows acces by the experienced 

2 5 network or system administer to manage the lists. Although this protocol is implemented by 
many devices, the assignment must be done by the IS department or system administrator. In 
a factory environment with automated devices running 24 hrs a day x 7 days a week, 
employing a system administrator to assign IP addresses on devices around the dock is not 
cost-effective. The technician or engineer replacing the device does not possess the adequate 

30 skill or knowledge to also assign the IP address, and having a device failure may cripple the 
plant operation. Businesses must minimize the downtime associated with field replacement 
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of devices in order to make the production numbers. Delaying a factoiy line until a system 
administer can issue an IP address to the device is not a satisfactory option in the highly 
competitive marketplace. 

5 Another prior art system of assigning IP addresses is done via indirect 

assignment using static address resolution protocol (ARP) override. The device is 
designed to 'assume' that any IP message arriving at the device that includes a MAC 
address that matches that of the device implies the registration of the IP address in the 
target. This forces the IP address sent to the device to be adopted by the device even if 
10 it is already in use. It also requires matching of the MAC address to the particular 
device. As noted herein, forcing the wrong IP address to a device on the network can 
result in unexpected catastrophe. _ 

Typically the ARP override method involves an operator sequence at a 
1 5 management station such as: 

arp-s 10.0.0.1 00:00:54:ab:cd:ef 
ping 10.0.0.1 

This forces the local station to build a directed unicast message to the Ethernet address 
00:00:54:ab:cd:ef and designate the IP address as 10.0.0. 1 . This is interpreted by the 
20 device with address OO:00:54:ab:cd:ef as authority to assign the IP address 10.0.0.1 
Any internet protocol can be used during the second phase. Instead of PING, it is 
common to use TELNET on obscure port numbers in an attempt to avoid 'accidental' 
reconfiguration. 

2 5 There are also alternative network protocols for devices, such as HP JetDirect 

cards. The HP JetDirect cards use the IPX protocol to advertise their presence to any 
management station on the local network. A management program running on some 
station on the local network picks up the advertisement and displays the device as 
requiring configuration to the operator. Since typically only one station at a time on a 

30 network will be in an unconfigured state, this allows the operator to recognize and select 
that unconfigured device without recording the MAC address. All of these mechanisms 
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require either knowledge of the MAC address of the device being attached, or at least 
specialized knowledge of the desired network function of the device by an operator. 
Use of an alternative protocol such as IPX will cause problems in use of the devices in 
environments where these protocols are not supported. 

All the referenced techniques of IP Address assignment require either knowledge 
of the MAC address of the device being attached, specialized skills and training, or 
preferably both. IPX protocol implementations has some further inherent difficulty with 
devices not supporting IPX protocols on the network. 

Industrial control devices pose particular problems because of the importance of 
operation, continuous operation, and location of the devices^ These devices may fail in 
service and must be replaced rapidly from a spares stock with minimum Mean Time To 
Repair (MTTR). For example, the devices may fail because they are exposed to 
electrical or mechanical stresses that exceed their specifications. An example of a 
mechanical stress is being crushed by impact with a fork lift truck. A common example 
of an electrical stress is 1 10/220 V line power being shorted to low voltage input 
circuits. In such situations, the devices are usually designed to f go safe', but they need to 
be replaced as rapidly as possible in order to allow the process to continue. 

Most industrial users maintain a stock of spare devices of each type that need to 
be replaced. These users provide instructions to maintenance personnel for replacement 
of faulty devices. However, the need to assign IP addresses accurately under such 
critical replacement conditions is usually not practical. This is particularly true in 
industrial environments with strict responsibility partitioning between an electrician who 
can rewire a module, but requires the service of an IT technician to alter network 
parameters. 

Previously, Ethernet was not considered a viable option to the business 
community. One problem with the implementation of Ethernet as a replacement for the 
device level networks such as ASi or DeviceNet was that you could not require anything 
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more elaborate than the setting of a rotary switch to match the predecessor device. 
Such problems diminished as the protocols changed and expanded the Ethernet options. 

One such protocol the industrial protocol MODBUS/TCP. MODBUS/TCP is a 
5 communication protocol designed to allow industrial equipment such as Programmable 
Logic Controllers, computers, operator panels, motors, sensors, and other types of 
physical input/output devices to communicate over a network. It was introduced by 
Schneider Automation in the early 1990*s as a variant of the widely used MODBUS 
protocol, which had been implemented in turn by almost all vendors and users of 

1 o automation equipment. The specification of the MODBUS/TCP variant was published 

on Schneider's web site, in order to encourage all vendors to implement the protocol 
consistently, and thus avoid interoperability problems that typically result when 
implementors must 'deduce* or 'reverse-engineer 1 an interface specification. 

15 There have been several attempts to resolve the aforementioned problems. U.S. 

patent 5,410,730 ( c 730), discusses automating the initial assignment of a process device 
address by allowing a number of devices to be attached to the network, issuing queries 
to which all devices will respond, and then using unique parameters or serialization 
included in those devices before installation to assist an operator in assigning the 

2 0 network address. 

The mechanism of the '730 patent requires foreknowledge of the unique 
characteristics of the device in order to provide address assignment, and cannot be used 
to perform automated assignment when replacing one of potentially many identical 

2 5 devices on a network segment. It is also not designed to work with TCP/IP local area 

networks. The mechanism of assigning a temporary address first, and then using that to 
complete the configuration process, is only necessary when using networks which have 
no native bootstrap address assignment process. In the case of a TCP/IP local area 
network, all of this functionality can be done using the Internet standard BOOTP 

3 o protocol (RFC 95 1). With BOOTP, the information needed to perform the match is the 
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serial number or 'MAC address 5 that is uniquely associated with the network interface 
hardware and readily available upon request. 

U.S. Patent 5,724,510, ('510) describes a technique which would most likely be 
5 banned in any practical Internet TCP/IP local area network because it assigns an address 
for a device by using speculatioa Specifically, it deduces the range of addresses in use 
on the network to which the device is attached, and then issues a series of queries to 
determine whether a given address within that range has already been assigned to 
another device. The novelty claimed in the '510 patent is that in addition to the standard 

1 o ARP technique ordinarily used to query the existence of a given IP address, the c 5 1 0 

system extends this by issuing a series of 'application level' queries. The reason for 
doing this is to overcome problems relating to the 'cacheing' of ARP records. 

A flaw in the '510 invention is that it fails to address the case where the address 
is being speculatively assigned has in fact already been assigned to another device, but that 
device is temporarily inaccessible, such as by being reset or through a temporary 
network disruptioa The '510 system would complete its assignment of the duplicate 
address in a finite time period, after which, if the original device were to come back on 
line, there would be a duplicate address situation that would impede operation of the 

2 o original device. This flaw supports the conclusion that it would likely never be permitted 

on a network used for automation purposes, as multiple devices with the same IP 
address would result in grave networking problems. A more appropriate solution to the 
assignment of an arbitrary address on a network is to use the Dynamic Host 
Configuration Protocol (DHCP) described in RFC 1531. 

25 

The invention of U.S.- Patent 5,446,897 ('897) allows for the assignment of the 
network address for a replaced device, automatically, by recognizing a unique 'logical 
identifier 5 , or an 'arbitrary word, number, or combination thereof. One application of 
this '897 patent is the replacement of one of many identical devices on a network. 

3 o Maintenance personnel set a plurality of switches or jumpers that are accessible on the 

device so that they have an identical setting to that on the device being replaced. Once 
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completed, the application technique described in the '897 patent completes the 
replacement. 

There are several limitations of technique of the '897 patent. Firstly, it requires 
5 that the devices being replaced incorporate the capability of reading some sort of 'logical 
identifier' before attempting address assignment Secondly, the devices being replaced 
must incorporate a non-standard protocol capability to transmit that information to the 
management device for the purpose of address assignment These two requirements 
severely limit the usefulness of the technique, since network administrators would be 

10 unwilling to deploy an automated configuration technique unless it applied to a high 
proportion of devices likely to require such assignment. Any attempt to make the 
requirements into a standard would require agreement among multiple vendors of 
equipment to adopt this additional feature voluntarily. Such cooperation would likely 
not succeed. The appropriate way of achieving such agreement is to propose the 

1 5 technique and get it adopted by a standards body such as the Internet Engineering Task 
Force (IETF). However, the IETF would be skeptical about the widespread adoption of 
such a technique because of its similarity to the BOOTP and DHCP protocols already 
available. In fact, the c 897 patent describes a technique identical to the prior art of 
BOOTP, where the logical identifier is the MAC address. 

20 

A system for allowing decentralization of a directory previously maintained on a 
single file server is described in U.S. Patent 6,021,429 ('429). Decentralization and 
resilience is achieved by arranging the 'list servers' to follow a defined protocol for 
determining the existence of list servers on a network. And, updating their contents 

2 5 from one of the devices whose contents are authoritative in order that any of the devices 

can serve the information in the case of unavailability of the original. 

This '429 technique has much in common with the distributed 'Yellow Pages' 
database implemented on Sun Microsystems workstations dating back to the mid 

3 o 1 980's. The primary difference is that the identity of a device being available to take on 

directory service duties need not be configured in advance. Instead, the devices 
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negotiate for authority based upon their assigned network addresses. This in turn is 
similar to the procedure used by Microsoft in implementing the 'automatic browse 
master assignment 9 for Windows 95 peer to peer file service. Indeed, almost all of the 
described capabilities have an equivalent in the 'browse list 9 feature maintained 
5 automatically by Windows 95 machines, and which is updated by notification messages 
sent out on a timed basis by network devices such as printers, computers, and other file 
server devices. 

Similar to '510 patent, the invention of U.S. Patent 5,586,269 ('269) discloses a 
mechanism that is concerned with assignment of an arbitrary network address that 
allows the device to become functional on the network. This is accomplished by 
attempting to contact the existing devices that have been assigned the proposed 
addresses, in turn, until one is found that is not currently assigned. 

The '269 mechanism is not appropriate for use on a TCP/IP local area network 
because of the problems caused if the address in question actually had been assigned to 
another device, but that device was temporarily inaccessible. Such a situation would 
likely cause network disruption and possibly a failure of control in an automation 
system Therefore, the '269 methodology would not be acceptable on a network used 
for automation purposes. Instead, the appropriate protocol to use if an arbitrary address 
were desired on a TCP/IP local area network is the standard DHCP protocol described 
in RFC 1531. 

The techniques of U.S. Patent 4,677,588 ('588) are not appropriate for TCP/IP 
local area networks. Assigning appropriate address ranges for network segments which 
are subsequently linked together is cumbersome, and cannot generally be overcome by 
defining an address assignment protocol that would be binding upon the existing devices 
on those networks. The existing TCP/IP devices expect stability in address assignment, 
and the act of interconnecting two networks cannot by itself, cause reassignment of 
network addresses without knowledge of the devices themselves. The '588 patent 
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describes a mechanism for more convenient allocation of addresses in a network 
environment that is not bound by the address assignment conventions of TCP/IP. 

U.S. Patent 5,987,524 ('524) describes what is commonly called a network 
5 firewall technique to overcome an intended intrusion attack using 'address spoofing'. 
The firewall is pre-configured with an association between the physical address of each 
subscriber device and the IP address assigned to that device. The firewall recognizes the 
case where an incorrect source network address is being presented by an intruding 
system, and prevents the messages from being propagated to their intended target 
10 device. 

The invention of U.S. Patent 5,980,078 ('078) allows a general-purpose network 
to be used as part of a bootstrapping mechanism to enter the initial configuration data 
for a device after it has been physically installed on a network, but before it has been 
15 made operational The '078 mechanism is specifically unsuftable for use with arbitrary 
target devices on a TCP/IP local area network since it relies on assignment of a 
temporary network address, and a non-operational state known as 'standby', in order to 
allow the device configuration to be completed with manual assistance. 

20 The invention described in U.S. Patent 5,917,808 ('808) is similar to that used in 

many commercially available network monitoring and system management tools, 
including ones which have been available on local area networks for more than a decade. 
Passive monitoring of network traffic to determine the identity and detail configuration 
of devices is a standard network management and troubleshooting procedure taught to 

2 5 network engineers. Building up a list of discovered devices in a database and displaying 
the contents of such database on demand is a standard feature of products such as 3Com 
Corp's 'Transcend' management package. 

The '808 technique is not appropriate to the problem of automatic reassignment 
30 of network IP addresses when a target device is replaced in service, because under those 
conditions there would be no broadcast traffic to be monitored. In particular, use of 
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Ethernet switching devices on modern networks severely impedes the value of passive 
monitoring, since only messages designated as 'broadcast' or 'multicast' are made 
available by the switches for monitoring by parties other than the direct participants of 
the communication. 

The invention of U.S. Patent 5,845,081 0081) is concerned with gateway 
devices that must allow access to information using 'foreign' networks. Specifically, by 
detecting the existence of one or more authoritative devices on the foreign network (the 
'target nodes 9 ), and making queries upon them, the target nodes will divulge information 
which can be assembled by the gateway in order to ease the configuration of such 
gateway. This includes pre- assignment of network address equivalence tables or similar 
data 

A method of allocating addresses on devices without using manual adjustment of 
switches is described in U.S. Patent 5,680,1 13 ('113). The '113 patent system does not 
use switches, relying instead on a known rearrangement of the wiring of an extension 
cable or connector when connecting such devices in series. 

Actually, this '113 mechanism is akin to that used by Modicon Corp (now part 
of Groupe Schneider) on a product line known as '800 series I/O' introduced with the 
884 model Programmable Controller in 1984. In that product, and for exactly the 
reason mentioned in the patent, the address of one of many modules in a modular I/O 
rack was determined by a combination of its rack number and slot number within the 
rack. To allow the racks to be physically identical parts and yet distinguishable in 
service, the interconnect cable performed a 'rotation' of the assignment of 5 signals. 
The effect of this was that the signals being presented to modules in the individual racks 
were detectable by the device, and this supplanted the need for any address switches. 

US Patent 6,012,088 ('088) describes a technique similar to BOOTP, in which a 
unique registration number known to the internet access device is presented to a known 
registration service, which can be accessed without requiring pre-configuration of the 
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device, and obtaining any configuration data from that device. The '088 invention relies 
on the existence of a known network service access point on the Public Switched 
Telephone Network, so the initial contact with the registration service can be done using 
only a previously recorded telephone number and modem settings. From that point 
5 onwards, any complex configuration settings can be automated based upon details 
previously registered in the database or negotiated with the equipment. 

Devices that make use of this c 088 technique must be specifically designed to do 
so, because the protocols used are non-standard. The non-standard mechanism is 

1 o required to handle the case where the device being installed is not on the same local area 

network as the registration server. If it were on the same network, the same results 
could have been obtained using the standard protocol BOOTP. 

In sum, the problem with prior art systems is lhat they require involvement of a 
1 5 specialized administrator to oversee the part replacement in order to property configure the 
network address. The prior art does not have a simple yet disciplined method to 
automatically designate proper IP addresses while maintaining the highest level of system 
integrity. What is needed is an automatic network address assignment system Such a 
system would decrease the mean-time-to-repair (MTTR) and allow for field replacement of 

2 o networked devices without incurring the expense of having a network professional 

administer the address configuration Ideally, such a system would use management 
information gathered from Ethernet switches to deduce physical location information, 
using such information to deduce the appropriate network address. 

25 SUMMARY OF THE INVENTION 

The present invention is a system for the automatic reconfiguration of Industrial 
Internet Devices. More particularly, the present invention facilitates the use of TCP/IP 
networks, such as Ethernet, as an alternative for industrial fieldbus or device buses. 

30 
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Accordingly, one object of the invention is to automate the reconfiguration of 
devices such as I/O modules, sensors, or transducers under field replacement situations. 
In one embodiment this is achieved by combining available Internet standard techniques 
along with a system management software component. The latter is referred to as the 
'management entity'. 

The present invention encompasses various algorithms and software running on a 
standard computer, such as a file server or administrative workstation, that periodically polls 
the status of network devices. One object of the invention is to detect a foiled network 
device that has been replaced, wherein the system automatically assigns the network address 
of the previously failed device. In one embodiment, the computing means is a dedicated 
monitor system in the form of a networked device that is installed in the same plant area and 
by the same personnel as the automation equipment it is supporting. Alternatively, the 
computing means encompasses functionality extensions to the managed network switches 
themselves. 

Another object of the invention is the prompt identification of networked devices that 
have failed in service, so that maintenance personnel can be dispatched rapidly to effect the 
replacement. This is a consequence of the constant monitoring of the devices over the 
network. 

A further object of the invention is a simplified initial configuration and set-up of the 
replaced equipment by using physical port numbers on a managed Ethernet switch rather 
than the less convenient MAC address numbers to identify the networked devices. 

One of the distinctions between the present invention and many of the prior art 
systems is the use of management information from a Managed Ethernet switch to 
deduce physical location information or using that information to deduce a network 
address. There is also no mention in the prior art of the use of information from a 
management entity on a Managed Ethernet switch or similar device to deduce the 
appropriate network address to use when replacing a device. 

15 
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In distinction to the '897 system, the present system requires no change to the 
network protocol capabilities of the target device, other than that it support the standard 
BOOTP address assignment protocol. There is no need to make accessible external 

5 switches or similar mechanical means which can be a source of additional cost, 
complexity, and unreliability. The determination that the device is an intended 
replacement, and thus should be reassigned a previously recorded address, is obtained by 
automated query to the management entity of an Ethernet switch or similar device to 
which the network cable is connected. The act of connecting the new device to the 

l o same cable or port as the original one provides the equivalent function to the 'logical 
identifier' in the previous patent. 

In distinction to the '427 patent, the mechanism for obtaining the network 
address information for the present invention is via the standard ARP protocol described 
15 in RFC 826. The present invention interrogates the existing target devices themselves 
after having determined that the device is amenable to automated maintenance by 
querying a managed Ethernet switch or similar device and confirming that the device in 
question is in an area of the network that has been pre-configured for such automated 
maintenance. 

20 

The present invention, in contrast to '078, allows unmodified TCP/IP target 
devices, implementing only the address assignment protocol BOOTP to be configured 
without human assistance, and it deduces the address assignment using information from 
a standard managed Ethernet switch. 

25 

In distinction to '808, the present invention, uses location data obtained from a 
managed Ethernet switch or similar device to confirm the equivalence of a newly 
installed device to its failed predecessor, and allows the communication of the new IP 
address using the standard BOOTP protocol. 
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The present invention performs the IP address assignment of a replacement 
device, and uses physical location data obtained from a standard managed Ethernet 
switch to provide guidance for such network IP address assignment, neither of which is 
mentioned in the '524 patent. 

In contrast to the 4 081 invention, the present invention is not concerned with 
operating gateways to foreign networks. The address information that needs to be 
maintained in order to perform IP address replacement is obtained without the assistance 
of designated target devices from which the address information can be obtained. 
Rather, address information is deduced using physical location information maintained 
by the standard managed Ethernet switch equipment for the benefit of human operators. 
There is no mention in the c 081 patent of physical location data obtained from a 
standard managed Ethernet switch to provide guidance for network IP address 
assignment when replacing devices in the field. Likewise, there is no relevance of 
the'l 13 technique to the reassignment of network IP addresses in a TCP/DP local area 
network. 

By contrast to '088, the technique of the present invention allocates replacement 
IP addresses for standard TCP/IP target devices automatically, communicating them to 
20 the device using the standard BOOTP protocol The address assignment is determined 
with the assistance of management information obtained from a standard managed 
Ethernet switch supervising the network. 

The present invention benefits from the standards relating to RFC 951 Bootstrap 
25 Protocol (BOOTP) and RFC 1493 SNMP support for Ethernet switch devices, in 
addition to RFC 2108. By using the international standards, all devices under the 
standard respond in the same manner. The present invention combines these widely 
implemented standards with unique methods and along with a novel software 
management entity to supervise them. As DCHP is compatible with BOOTP, if the 
30 query is determined to be DCHP, the DCHP form of the BOOTP response can be used. 

17 
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A further feature of the present invention is that the network may be deployed in 
such a way that every target IP unit has a dedicated line to a port on a managed switch. 
In this case, there are no issues of ambiguity of replacement unit identity. Alternatively, 

5 the managed switches may be deployed on a more selective basis and utilize less 

expensive unmanaged switches or repeating hubs as the interface for the target IP units. 
In this scenario, the managed switch encounters more than one MAC address 
associated with one managed port on a switch. It is therefore necessary to restrict auto- 
reassignment of addresses to the case where the number of failing target IP units in the 

10 given managed plant area is exactly one. 

One of the benefits of the present invention is the ability to recognize Med 
networked devices and automatically assign proper IP addresses to (liminish down-time. 
Additionally, Ihe methodology locates the physical location or region of 1he networked 
15 devices allowing for ease of finding a failed device. The present invention also deals with the 
authority of the system to assign IP addresses only if a single unit is determined to be 
replaced. If the system cannot isolate to a single tailed network device, the automatic 
assignment is suppressed. 

An object of the invention is a system for field replacement of networked devices, 
comprising the steps of detecting a failed networked device, replacing the failed networked 
device with a functioning networked device, locating a canonical location of the functioning 
networked device, issuing an IP address to the functioning networked device, wherein the IP 
address is identical to the IP address of the foiled networked device. 

A further object is for a system, wherein the step of detecting the foiled networked 
device is accomplished by a unicast ARP request. Additionally, the step of detecting the 
failed networked device is accomplished by periodic ARP requests. An object also includes a 
system, wherein the step of detecting a failed networked device comprises processing a 
plurality of ARP requests over a time period before indicating the foiled networked device. 



25 
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An additional object is a system, further comprising a step of notifying maintenance 
personnel of the failed networked device. 

An object of the invention is a system, wherein the step of locating a canonical 
5 location of the functioning networked device comprises the steps of requesting a MAC 
address for the functioning networked device and requesting a port number for the MAC 
address from a managed switching device, wherein the port number is the canonical location 
of the functioning networked device. 

Another object is a system, wherein the step of locating a canonical location of the 
functioning networked device comprises the steps of identifying a plurality of target devices 
at the canonical location, comparing the canonical location of the functioning networked 
device with a database containing information of all the networked devices to isolate a single 
foiled networked device at the canonical location. Also, a system, wherein the step of issuing 
an IP address to the functioning networked device is suppressed if unable to isolate to a 
single foiled networked device. 

An object of the invention is for a method for determining a canonical location for a 
plurality of networked devices, comprising the steps of maintaining a list of IP addresses for 
each of the plurality of networked devices on a monitor agent. Requesting and retrieving a 
MAC address for each of the plurality of networked devices. Maintaining a list of MAC 
addresses for each of the plurality of networked devices on the monitor agent. Requesting 
and retrieving a port number on a switching device for each MAC address. Maintaining a list 
of port numbers for each of the plurality of networked devices on the monitor agent. 
Processing the canonical location for each of the plurality of networked devices. 

An additional object is a method, wherein the monitor agent comprises a computing 
means and a memory means. 

Additionally, an object includes a method, wherein the switching device is a managed 
switching device and the port number is dedicated to the networked device and is the 
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canonical location Alternatively, an object is for a method, wherein the switching device is 
an unmanaged switching device and the port number is shared among a plurality of target 
devices. 

5 An object of the invention is a method for detecting a canonical location for a failed 

network device, comprising the steps of requesting a MAC address for each of a plurality of 
networked devices. Detecting the Med network device and processing the MAC address for 
the canonical location of the foiled network device. Finally, logging the MAC address, the 
canonical location, and an IP address for the Med network device. 

10 

The objects include using a unicast ARP message to a select IP address. 

Another object is a method, wherein the step of detecting the Med network device is 
based on no responsive from the requesting step. 

An additional object is for a method, further comprising a step of notifying 
maintenance personnel upon detecting a failed network device. 

Additionally, a method wherein the step of requesting a MAC address is periodic. 

20 

An object includes a method, wherein the step of processing the MAC address for 
the canonical location comprises accessing a database containing a MAC address listing, an 
IP address listing and a port listing for each of the plurality of networked devices, and 
wherein a port number represents the canonical location of the failed network device. 

25 

Yet another object is a method wherein the step of processing the MAC address for 
the canonical location comprises accessing a database containing a MAC address listing, an 
IP address listing and a port listing for each of the plurality of networked devices, and 
wherein a port number represents the canonical location of a plurality of target devices, and 
30 the IP address of the Med network device is determined by locating a single failed target 
device at the canonical location. 
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An object of the invention is an apparatus for the automatic configuration of 
networked devices, comprising a network interface interconnecting the networked 
devices, a means of detecting the networked devices, a means of determining a canonical 
5 location of the networked devices, and a monitor agent connected to the network 
interface, wherein the monitor agent issues an IP address to each of the networked 
devices and records a MAC address for each of the networked devices and wherein the 
monitor agent maintains a list of each IP address and each MAC address. 

10 A further object is an apparatus further comprising a means of processing a new 

IP address for a new networked device, wherein the new IP address does not conflict 
with the IP address list maintained by the monitor agent. 

And yet another object is an apparatus wherein the means of detecting the 
15 networked devices is accomplished by a periodic unicast ARP request. 

An object also includes an apparatus wherein the means of determining a 
canonical location of the networked devices comprises a means of processing a port 
number for the MAC address from a managed switching device. 

20 

A final object is an apparatus, wherein the means of determining a canonical 
location of the networked devices comprises a means of processing a plurality of target 
devices at the canonical location 

2 5 Still other objects and advantages of the present invention will become readily 

apparent to those skilled in this art from the following detailed description, wherein only 
a preferred embodiment of the invention is described, simply by way of illustration of the 
best mode contemplated for carrying out the inventioa As will be realized, the 
invention is capable of other and different embodiments, and its several details are 

30 capable of modifications in various obvious respects, all without departing from the 
invention. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 Basic block diagram showing interconnected elements 

5 

FIG. 2 Block diagram illustrating replacement situation 

FIG. 3 Diagrammatic view of discovery/confirmation for dedicated port 

l o FIG 4 Diagrammatic view of discovery/confirmation for shared port 

FIG. 5 Diagrammatic view of confirm presence for dedicated port 

FIG. 6 Diagrammatic view of confirm presence for shared port 

is 

FIG. 7 Diagrammatic view of DP Address assignment 

FIG. 8 Diagrammatic view of IP Address reassignment 

20 
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DESCRIPTION OF THE PREFERRED EMB ODIMENT 

One embodiment of the present invention is referenced in FIG. 1. There is a 
monitor agent 10 that serves as the BOOTP server and comprises computing means for 
managing and processing the network data and a memory means for storing information. 
The monitor agent 10 is connected to a network having one or more managed switches 
20. The managed switches 20 are considered to be on the local plant area There are 
multiple ports 25 on the managed switch 20, and it is capable of reporting MAC 
addresses and/or port assignments. 

In a preferred embodiment, the TCP/IP network is Ethernet and uses Ethernet 
managed switches 20. It should be understood that the termnetwork refers to any 
communication exchange and not a specific type of connection. 

Connected to the managed switch 20 is a number of inexpensive hubs 40 with a 
number of hub ports 45. Connected to these hub ports 45 are a plurality of devices, 
such as I/O devices 50 and other elements such as a computer 60. 

Each device connected to the hub ports 45 has an associated MAC address and 
an associated IP address. The managed switch 20 reports all MAC addresses and port 
assignments associated with the hubs and devices connected to the monitor agent 10. 
The monitor agent 10 maintains a list of all port assignments and MAC addresses. Thus, 
not only does the monitor agent 10 know the MAC and IP addresses of an individual 
device, but it also knows the approximate location by knowing to which port of a 
Managed Ethernet Switch 20 the device is connected. 

The local plant area refers to the system of devices located from a managed 
Ethernet switch 20 and downwards, including all hubs and I/O devices interconnected 
therein. The monitor agent 10 exists in an enterprise net, and records all IP and MAC 
combinations found in the local plant area 

24 
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Referring to FIG. 2, each of the working devices 70, 80, 100 connected to the 
hub 40 has a MAC address and an IP address. The failed or malfunctioning unit 100 
also had a MAC address and IP Address. Based on periodic device polling, the 
information of a failed unit has already been communicated to the monitor agent 10 
5 through the managed switch 20. The monitor agent 10 also lists the failed device 100 as 
being located on managed switch Portl. 

From an overview perspective, as soon as the failed device 100 is replaced with a 
working device 1 1 0, the working device 110 requests a network assignment. The 
monitor agent 10 notes the request, and determines if the request originates from the 
location of the previously detected failed unit 100. If the request comes from Port 1, the 
monitor agent 10 issues the same IP address as the previousdevice and the new device 
110 begins operating on the network. 

More specifically, the monitor agent 10 maintains a database of all MAC 
addresses for each device on the network. This BOOTP database is built and 
maintained automatically, by the monitor agent 10 that takes advantage of the MAC 
address detection scheme built into modern Ethernet switch devices. Using this 
capability, which is referred to as the SNMP FindPort query and is defined by RFC 
1493, it is possible by issuing SNMP requests from a management program to track 
down a particular MAC address and identify on which port of which switch it is found. 

The IP addresses of the various devices are also maintained by the monitor agent 
10. Actually, the monitor agent 10 issues the IP address to each new device. In 
operation, all devices are set to request their network assignment, or IP Address, at 
power up using the standard BOOTP protocol In a preferred embodiment, the devices 
perform the request multiple times, such as 3 or more, over a 'reasonable period' such as 
1 5 seconds. If a response is obtained from a BOOTP server entity on the network, then 
the IP address and other returned parameters will be used by the device. In addition, the 
IP address information may be recorded locally, so that in the event that the device 
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subsequently powers up WITHOUT the BOOTP server being available, it will fall back 
to the last known good address. 

If the device has an address recorded already, and the address returned using 
5 BOOTP is different, then the newly obtained address is used and recorded. The present 
invention thus handles the case where a unit is swapped out, tested, found to be 
operable, and returned to spares stock, but it has not been completely initialized in the 
process. 

10 MAC addresses are conventionally expressed as a hexadecimal number with 12 

digits, in the form 'ab:cd:ef:01 :23:45\ The expressions "ABC, 'DEF etc in the figures 
are a simplification to avoid distracting the reader. Referring again to FIG. 2, as an 
example - a first I/O device 70 has a MAC address = ABC, a second I/O device 80 has a 
MAC address = DEF, and a third I/O device 1 00 has a MAC address = EFG. The MAC 

15 addresses were previously detected and recorded by the monitor agent 10. The monitor 
agent 10 also records and issues the IP addresses for each device. Thus, first I/O device 
70 has an IP address of 10.0.0.1, the second I/O device 80 has an IP address of 10.0.0.2, 
while the third I/O device 100 has an IP address of 10.0.0.3. The monitor agent 10 
identifies each of these I/O devices 70, 80, and 100 as coming from Port 1 of the 

2 o managed switch 20. 

The monitor agent continually polls the I/O devices 70, 80, 100, and when a 
device malfunctions the device either issues commands indicating a failure, sends back a 
malfunction or error code in response to the poll, or ceases to respond at all. The failure 

2 5 information can be forwarded to the appropriate maintenance department. In the 

present example, device 100 fails. 

Once the maintenance personnel have successfully removed the faulty unit 100 
and installed a replacement device 1 10, the replacement device 110 issues a BOOTP 

3 o request. The monitor agent 1 0 receives the BOOTP request and determines if the 

managed switch 20 port location of the replacement device 110 coincides with the 
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location of the present BOOTP request. If the monitor agent 10 determines that the 
replacement device 110 is replacing the malfunctioning device 100, it issues the same IP 
address to the replacement device 110. 

5 For example, the replacement device 110 with a MAC address of HI J issues a 

BOOTP request which is transmitted through the hub 40 port 3 and through the 
managed switch 20 port 1 to the monitor agent 10. The monitor agent determines 
which port of the managed switch the BOOTP request originated Once it is determined 
that the failed unit and the BOOTP request came from the same port of the managed 
10 switch 20, the replacement device 1 1 0 is designated with the same DP address as the 

failed unit 100 and assumes the IP address 10.0.0.3. The replacement device 110 is thus 
quickly established on the network. The monitor agent 10 then continues to poll the 
units for status. 

15 In one embodiment, a managed switch is used in lieu of the hub 40, so that the 

monitor agent 10 can track the port designations from each layer of the network. In 
another embodiment, the monitor agent itself may be duplicated on the network, so that 
in the event of failure of the hardware or networking infrastructure leading to the 
monitor agent 10, another monitor agent with visibility into the same local plant area 

2 o would be able to take over its duties. 

The discovery/confirmation sequence finds the MAC address of targets and 
records the canonical location (numbered port of supervised switch) for a dedicated port 
scenario as shown in FIG. 3. The discovery sequence detects initial or new devices 
2 5 connected to the network and confirms the target locations. The supervisor/monitor 
agent 200 issues $n ARP request 210 as a broadcast message to inquire the MAC 
address of the IP address. The target IP unit 220 receives the request and issues an 
ARP response 230 containing the MAC address of the requested IP address. 

30 The supervisor 200 issues an SNMP Findport request 240 to the managed switch 

250 to request the port number of the reported MAC address. The managed switch 250 
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issues an SNMP Findport response 260 back to the supervisor 200 with the port number 
of the MAC address. In FIG. 3, port number 3 would be returned to the supervisor. 

FIG. 4 shows the discovery/confirmation sequence for the shared port scenario. 
5 In this embodiment, the supervisor 200 issues a broadcast ARP request 210 to inquire 
the MAC address of the selected IP address. The target IP unit 220 responds with an 
ARP response 230 containing the MAC address of the requested IP Address. The 
supervisor 200 then issues an SNMP Findport request 240 requesting the port number 
of the MAC address. The managed switch 250 issues an SNMP Findport response 260 

1 o back to the supervisor 200 with the port number of the MAC address. In FIG. 4, port 

number 3 would be returned to the supervisor. 

However, the managed switch 250 connects to one or more unmanaged switches 
or hubs 300. Multiple target units 220, 310, 320 are connected to the unmanaged 
is switch 300. Thus indicating port 3 of the managed switch indicates the target units 220, 
310, 320 as sharing the managed switch 250 port 3. Automatic reallocation would be 
suppressed and further processing would be required to determine which of the target 
units 220, 310, 320 is down, if more than one of them were down at the time of 
attempted replacement. 

20 

The confirm presence sequence interrogates the target units at periodic intervals, 
whereby a non-responsive unit indicates the target is 'down' or failed. In a dedicated 
port scenario such as shown in FIG. 5, a single target down in a canonical location 
becomes a reassignment candidate. 

2 5 During the confirm presence process, the supervisor 200 issues an ARP request 

210 as a unicast message to inquire the MAC address of a selected IP address. If the 
target IP unit 220 receives the request and returns an ARP response 230 containing the 
MAC address of the requested IP address, the unit is determined to be fimctioning. If 
there is no response, this indicates that the target IP unit 220 is down or failed. Such a 

3 o failure isolates the reassignment candidate to a single unit for the maintenance personnel. 

Note that the supervisor can be programmed to perform the check a certain number of 
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intervals over a certain period of time before determining the unit foiled. Such repetition 
and time intervals are usually specific to the application, and it would be obvious to one 
skilled in the art to change the repetition or timing. 

5 FIG. 6 shows the confirm presence sequence for the shared port scenario. In this 

embodiment, the supervisor 200 issues an ARP request (unicast) 210 to inquire the 
MAC address of the selected IP address. The target IP unit 220 responds with an ARP 
response 230 containing the MAC address of the requested IP Address. If no response 
is returned, the target unit 220 is down and selected for reassignment. If there is only a 
single target unit on the unmanaged switch or hub 300 for which a failure is indicated, 
then the single target unit is down and selected for reassignment. However, where there 
are multiple target units 220, 310, 320, and more than one of them is down, then the 
automatic reallocation is suppressed. 

For example, the managed switch 250 connects to one or more unmanaged 
switches or hubs 300. Multiple target units 220, 310, 320 are connected to the 
unmanaged switch 300. Thus indicating port 3 of the managed switch 250 only 
indicates the target units 220, 310, 320 as sharing the managed switch 250 port. 
Additional processing is necessary to determine which target IP unit has failed. 

The normal use of ARP request messages is to inquire the MAC address of a 
target whose MAC address is not known but whose IP address is known. In order to 
send a unicast message the sender must designate the MAC address of the target. The 
use of unicast ARP requests during the repetitive 'poll' of the device confirm whether 
the device is still alive. The choice of a unicast rather than a broadcast for this 
interrogation is important in large networks to avoid excessive use of broadcast traffic 
that will be perceived as needless interruption by all other stations. 

FIG. 7 shows the IP address assignment sequence to automatically issue an IP 
address to a target unit that was reset or power cycled, but otherwise previously running 
at that locatioa The target IP unit 220 automatically broadcasts a BOOTP request 400 
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to supply an IP address for the MAC address. The supervisor 200 receives the BOOTP 
broadcast and sends out an SNMP Findport request 410 to the managed switch 250, 
requesting the port number for the MAC address. The managed switch 250 responds 
with an SNMP Findport response 420 with the port number for the MAC address. In 
5 this example, the port number was 3 for the MAC address. The supervisor 200 checks 
if the MAC address was already associated with the IP address at that canonical 
locatioa If the MAC address matches the number which the supervisor 200 expected, 
the supervisor 200 issues a BOOTP response 430 and sends the IP address for the MAC 
address. 

10 

The IP address reassignment sequence is shown in FIG 8. The target unit 440 
was not previously running at that location, and issues a BOOTP request 400 as a 
broadcast message. The supervisor 200 receives the BOOTP request 400 and issues an 
SNMP Findport request 410 to find the port number of the MAC address. The 
15 managed switch 250 receives the request 41 0 and replies with an SNMP Findport 

response 420 that contains the port number of the MAC address. The supervisor 200 
determines that the MAC address is unknown. 

In the illustrated embodiment, a single unit 440 at that location is not responding. 

2 o The supervisor 200 updates the equivalence table that links the IP addresses, and 

records the new IP assignment and authorizes the assignment. The supervisor 200 
issues a BOOTP response 430 that sends the IP address to the requesting device at the 
new MAC address. It is assumed that the target unit 440 is an equivalent unit 440 and 
connected with the same cabling. 

25 

In operation, the management program/supervisor, as part of a routine periodic 
'scan 1 , determines the existence of the networked devices. The management 
program/monitor agent interrogates the network switch and determines the location of 
the devices on the network. The device is either a single device attached to a network 

3 o switch port (on a folly switched layer 2 network) or being.one of a limited number of 

devices localized to a single port on a switch. The hubs that are not managed are less 
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expensive, but do not provide an exact resolution as to which port the devices within the 
hub are connected. This latter method is a more economical hybrid of managed switches 
and managed switches or hubs. In addition, the management program has authority to 
interrogate the devices in benign ways, such as PING or attempted Modbus/TCP 
5 connection, to confirm the identity of the device as far as the relationship between MAC 
address and IP address. 

In practice, the interrogation is done by running a routine 'probe 9 of the address 
space domain. For example, the management entity may issue a Modbus/TCP 
connection attempt to each device. Any station or deviqe that acknowledges the 
connection request is recorded as being a potential address management candidate, and 
the details are recorded as follows: 

1. The IP address is known and it was the one used in the probe. 

2. MAC address is obtained by checking the local ARP table or by recording the source 
MAC address of the acknowledgement response. 

3. Find switch and port assignment by comparing the MAC address with the most recent 
FindPort response record obtained from the switches on the network. Alternatively, the 
switch and port assignments are found by issuing an exploratory sequence of FindPort 
requests to the switches in the hierarchy. The values corresponding to the 'most local' 
switch to the device are recorded. This information is then used to prepare the BOOTP 
database as well as a MAC/location lookup table. 

Once the device has been detected using the probe, it is added to a list of devices 
whose operability is to be continuously monitored. This may be done in a variety of 
ways such as checking on a frequent basis that the device is still responding, and 
confirming the MAC/location data If a device is found to be unavailable, that physical 
switch/port combination will be monitored closely for reappearance of the same module 
or for a potential replacement operation. The unavailability can be logged according to 
a length of time or number of requests. An alerting signal can be issued to maintenance 
as part of the overall configuration. 
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Under most situations, such as a routine shutdown and restart of the plant area 
concerned, the original device will repeat its BOOTP request on powerup. The 
management entity will find a match of the requested MAC address in the BOOTP table, 
and will send back a BOOTP response to the device authorizing it to use the IP address 
5 previously recorded. Thus there is minimal delay on normal plant reset operations. 

If a device needs to be replaced under field maintenance conditions, the device is 
replaced quickly and by a low-level technician or maintenance person The replacement 
device is connected to the same network cable as the former unit, or at least, to the same 
10 port on the switch. It is important to note that the replacement device must be an 

equivalent unit to the failed unit and operate with the same functionality and command 
set. - 

Once the replacement unit powers up, it issues a BOOTP request, as dictated by 
15 the industry standards. There will not be any 'conventional * BOOTP server with the 
MAC address of the device in its database, so there will not be any conventional 
BOOTP response. There will be no entry in the management entity's database. At this 
point the management entity will contact the switches which it is monitoring to find 
which one 'saw' the MAC address of the BOOTP request it just received. Of course, the 
2 o switches it consults first are the ones that are known to have one or more 'missing' 
devices on the most recent update scan. 

If a switch returns a match with the MAC address of the BOOTP request, 
AND 

25 The management entity confirms only a single device was missing from the set of 
devices 

monitored at that switch port 
AND 

The device appears to be similar to the device that was missing 
30 AND 
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The device has not apparently been assigned an IP address already (for example, it has 
made 

multiple BOOTP requests) 
THEN 

5 The management entity will authorize the substitution of the single 'missing 1 DP address 
to the 

device now requesting. A BOOTP response is sent back (after the second or third 
BOOTP 

request, not the first) which the device will interpret in the normal way. 

10 

As a result of this automated field replacement, a single TCP/IP station is 
performed automatically, without manual configuration, andjt is done in less than 15 
seconds. 

is With respect to deliverable and management, the management entity running in 

one or more computers should be available 7 days a week x 24 hours a day. The most 
natural such devices are the managed Ethernet switches themselves. They ordinarily are 
supplied with uninterruptible power, and are designed to have a very low likelihood of 
failure. In addition, because the present invention does not rely on a unique database, 

20 such as DHCP, there is no issue with two or three devices sharing the responsibility for 
network supervision. 

The devices in turn would be configured in some convenient way, such as via an 
embedded Web server, to be advised of their ranges of IP address to monitor and if 
2 5 there are any special distinguishing characteristics of particular parts of the network. In 
particular, information such as the IP addresses of the switches to be supervised are 
most conveniently entered in this way, rather than having to be 'discovered 1 through 
network probing techniques. Most importantly, the configuration information is entered 
by personnel who have familiarity and authority to manipulate network addresses. 

30 
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An additional embodiment allows direct entry to the management entity of the 
desired network address of a new module on a given switch port. This can be used as 
part of a controlled installation sequence, where the technician inputs the data one entry 
at a time, in step with powering on the modules. This avoids the need, common today, 
5 for the technician to record the MAC address from the module and enter it as part of a 
configuration sequence. Instead, the technician performs the following steps: 

1 . Select the switch and port to which he wants to attach the module 

2. Confirm that there is no currently 'missing' module on that port 

3. Enter the desired IP address as if it were a 'missing 1 module 

4. Allow the newly attached module to power up. 

This allows the single module to be assigned, and thetechnician can go on to the 
next maintenance task. This is much more convenient than any current technique in the 
industry. 

The present invention works extremely well in environments where the location 
of a device can be determined accurately. For example, where a fully switched layer 
topology is used and there is an RFC 1493 management at the local switch allowing 
resolution to a single device on a port. 

If, however, more than one device is 'down 1 on a network segment, and the 
address cannot be matched unambiguously, it is not safe to transform automatic address 
substitution in this manner. In such a situation, it is not known which of the multiple 
devices requires substitution. 

This situation is improved at minimal increase in complexity by allowing the 
devices to alter one of the fields of the BOOTP request in such a way as to have a 
different 'signature' based upon device type. For example, all devices from a given 
manufacturer and family might share a code, but the code varies between, a 16-point 
discrete output module and a 4 channel analog input. By using this auxiliary information 
in its BOOTP equivalence table, the management entity is able to reduce the incidence 
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of 'reassignment stall 1 situations. This technique would require cooperation and 
standardization in the industry to be effective. 

One of the most obvious uses of the present invention is for devices without 
operator interfaces, such as industrial I/O modules. However, it can also be used to 
shorten the installation time for devices that do have such interfaces, but where the IP 

address that is to be assigned must be tightly controlled by a monitor agent. 

> 

For example, a l thin client' computer to be used as an operator terminal can be 
configured to use BOOTP. In the event of failure, a unit could be disconnected and its 
replacement automatically assigned exactly the same IP address. This is important in 
two situations common to computers on industrial networks^ 

The first situation arises when the IP address is going to be validated by bewail 1 
devices, which must be convinced of the legitimacy of the requestor by its physical 
location. Most firewalls can be configured to allow connections to 'pass through 1 based 
upon rules involving the IP address or range of IP addresses of initiator and target. 

A second situation arises when a thin client has an active role on the control 
network, and the act of replacing a device, and auto-assigning its address, allows the 
device to complete its 'application bootstrap 1 by being given its application program and 
operating parameters from some anonymous server. This is particularly valuable in a 1 
distributed control 1 environment where a component such as a PLC or gateway has 
failed, but could also apply to operator panels, robots, and similar devices. 

Although BOOTP protocol is the most commonly used for automatic assignment of 
IP addresses, DHCP and RARP are obvious alternative protocols to respond to an address 
assignment request as described herein 

Similarly, the interrogation messages sent out by the device to confirm the continued 
presence of the target IP addresses can be either an 'ICMP ECHO' (PING) request or singly 
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a repeat of the ARP request used to determine the identity in the first place. For efficiency 
purposes the interrogation message is restricted to the ARP message, the message is sent out 
as a unicast message, and sent only to the MAC address which the recipient used 

5 As will be realized, the invention is capable of other and different embodiments 

and its several details are capable of modifications in various obvious respects, all 
without departing from the essence of the inventioa 
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CLAIMS 



I claim: 



5 I. A. system for field replacement of networked devices, comprising the steps 

of 

detecting a foiled networked device; 

replacing said foiled networked device with a functioning networked device; 
locating a canonical location of said functioning networked device; 
10 issuing an IP address to said ftmctioning networked device, wherein said IP 

address is identical to the IP address of said foiled networked device. 

2. A system according to claim 1, wherein said step of detecting said failed 
networked device is accomplished by a unicast ARP request 

15 

3. A system according to claim 1, wherein said step of detecting said failed 
networked device is accomplished by periodic ARP requests. 

4. A system according to claim 1, further comprising a step of notifying 
2 o maintenance personnel of said foiled networked device. 



5. A system according to claim 1, wherein said step of detecting a failed 
networked device comprises processing a plurality of ARP requests over a 
time period before indicating said failed networked device. 

25 

6. A system according to claim 1, wherein said step of locating a canonical 
location of said functioning networked device comprises the steps of 
requesting a MAC address for said functioning networked device and 
requesting a port number for said MAC address from a managed switching 

30 device, wherein said port number is said canonical location of said 

functioning networked device. 
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7. A system according to claim 1, wherein said step of locating a canonical 

location of said functioning networked device comprises the steps of 
identifying a plurality of target devices at said canonical location, comparing 
5 said canonical location of said fimctioning networked device with a database 

containing information of all said networked devices to isolate a single failed 
networked device at said canonical locatioa 



8. A system according to claim 1, wherein said step of issuing an IP address to 
10 said functioning networked device is suppressed if unable to isolate to a 

single foiled networked device. 

9. A method for determining a canonical location for a plurality of networked 
devices, comprising the steps of 

15 maintaining a list of IP addresses for each of said plurality of networked 



devices on a monitor agent; 

requesting and retrieving a MAC address for each of said plurality of 
networked devices; 

maintaining a list of MAC addresses for each of said plurality of networked 
2 o devices on said monitor agent; 

requesting and retrieving a port number on a switching device for each said 
MAC address; 

maintaining a list of port numbers for each of said plurality of networked 
devices on said monitor agent; and 
25 processing said canonical location for each of said plurality of networked 

devices. 

10. A method according to claim 9, wherein said monitor agent comprises a 

computing means and a memory means. 

30 



38 



WO 02/05107 
11. 

5 12. 

13. 

10 
15 

14. 

20 

15. 
16. 

25 

17. 

30 18. 



PCTYUS00/40346 



A method according to claim 9, wherein said switching device is a managed 
switching device and said port number is dedicated to said networked device 
and is said canonical location 

A method according to claim 9, wherein said switching device is an 
unmanaged switching device and said port number is shared among a 
plurality of target devices. 

A niethod for detecting a canonical location for a failed network device, 
comprising the steps of: 

requesting a MAC address for each of a plurality of networked devices; 
detecting said failed network device; 

processing said MAC address for said canonical location of said foiled 
network device; and 

logging said MAC address, said canonical location, and an IP address for 
said failed network device. 

A niethod according to claim 13, wherein said requesting uses a unicast ARP 
message to a select IP address. 

A method according to claim 13, wherein said step of detecting said failed 
network device is based on no responsive from said requesting step. 

A method according to claim 13, further comprising a step of notifying 
maintenance personnel upon detecting said foiled network device. 

A method according to claim 13, wherein said step of requesting said MAC 
address is periodic. 

A method according to claim 13, wherein said step of processing said MAC 
address for said canonical location comprises accessing a database containing 
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a MAC address listing, an IP address listing and a port listing for each of said 
plurality of networked devices, and wherein a port number represents said 
canonical location of said failed network device. 

5 19. A method according to claim 13, wherein said step of processing said MAC 

address for said canonical location comprises accessing a database containing 
a MAC address listing, an IP address listing and a port listing for each of said 
plurality of networked devices, and wherein a port number represents said 
canonical location of a plurality of target devices, and said IP address of said 
i o failed network device is determined by locating a single failed target device at 

said canonical location. 

20. An apparatus for the automatic configuration of networked devices, 
comprising: 

is a network interface interconnecting said networked devices; 

a means of detecting said networked devices; 

a means of detemrining a canonical location of said networked devices; and . 
a monitor agent connected to said network interface, wherein said monitor 
agent issues an IP address to each of said networked devices and records a 
20 MAC address for each of said networked devices and wherein said monitor 

agent maintains a list of each said IP address and each said MAC address. 

21. An apparatus according to claim 20, further comprising a means of 
processing a new IP address for a new networked device, wherein said 

25 new IP address does not conflict with said list of each said IP address 

maintained by said monitor agent. 

22. An apparatus according to claim 20, wherein said means of detecting said 
networked devices is accomplished by a periodic unicast ARP request. 

30 
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An apparatus according to claim 20, wherein said means of determining a 
canonical location of said networked devices comprises a means of 
processing a port number for said MAC address from a managed switching 
device. 

An apparatus according to claim 20, wherein said means of determining a 
canonical location of said networked devices comprises a means of 
processing a plurality of target devices at said canonical location. 
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